Healthcare Information Security

Healthcare Data Encryption

L.A. Gay and Lesbian Services suffers data breach

by Patrick Ouellette

The L.A. Gay and Lesbian Community Services Center (LAGLCSC), which offers healthcare services such as HIV testing, pharmaceutical services, mental health and preventative health services, has begun notifying 59,000 clients that some of its information...

Laptop containing patient information stolen from SIU

by Nicole Freeman

A laptop housing personal and medical information from 1,891 Southern Illinois University HealthCare patients was stolen from the office of a former doctor at Memorial Medical Center in September or October, according to The State Journal-Register....

Update: Kaiser Permanente breach affects 49,000 patients

by Patrick Ouellette

No week is complete without a healthcare data breach in which a USB flash drive was either stolen or lost. This time, it was the Kaiser Foundation Hospital Orange County - Anaheim Medical Center alerting patients that their data had been compromised...

Horizon Blue Cross Blue Shield tells 840,000 of data breach

by Nicole Freeman

A pair of laptops containing unencrypted patient data was stolen from Horizon Blue Cross Blue Shield of New Jersey’s (BCBSNJ) Newark headquarters, according to a report on The Apple MacBook Pros held information from almost 840,000...

Laptop, paper files with patient information stolen in Texas

by Nicole Freeman

A laptop belonging to the Houston Methodist Hospital containing encrypted information from 1,300 patients was stolen on Thursday, according to Paper files were also reported missing. While there is no mention of the incident on the...

Healthcare data breach trends: Preparing and reporting

by Nicole Freeman

With data breaches on the rise, Experian has released a “2014 Data Breach Industry Forecast” featuring predictions and tips for the healthcare industry and other sectors. There is no indication that data breaches will slow, and healthcare...

2014 Cyber Security Forecast: Significant healthcare trends

by Patrick Ouellette

Organizations across different industries will have to continue to be proactive about enhancing IT security measures in 2014, according to data breach management specialist Kroll Advisory Solutions. Kroll released its third annual Cyber Security...

FTC responds to LabMD’s motion for protective order

by Nicole Freeman

In the latest update in the battle between the Federal Trade Commission (FTC) and LabMD, a cancer detection facility, the FTC responded to LabMD’s attempts to throw out the FTC’s complaint and eliminate several subpoenas for discovery,...

UPMC mails patient data breach notification letters

by Patrick Ouellette

In addition to notifying the Department of Health and Human Services (HHS), the University of Pittsburgh Medical Center (UPMC) is alerting 1,300 patients via letter that their data was accessed by an unauthorized UPMC McKeesport employee. The...

UW Medicine notifies 90,000 patients of data breach

by Nicole Freeman

UW Medicine has notified nearly 90,000 patients of an October data breach involving malicious software (malware), according to A UW Medicine employee received and opened an email attachment containing malware, which took over the...

Florida physician group notifies 4,400 patients of breach

by Nicole Freeman

The Florida Digestive Health Specialists LLP has notified 4,400 patients of a data breach by a former employee, according to the Herald-Tribune. Protected health information including patient names, birthdates, phone numbers, and Social Security...

Over 8,000 UCSF patients notified of physician laptop theft

by Nicole Freeman

The University of California, San Francisco (UCSF) has notified 8,294 patients of the theft of a laptop from a physician’s car, according to The situation is highly reminiscent of a UCSF laptop theft from September 9. After...

Milwaukee files health data breach complaint with OCR

by Patrick Ouellette

Not surprisingly, the City of Milwaukee is trying to lay the proverbial hammer down on Dynacare, a clinical laboratory services company that lost a USB flash drive with unencrypted patient data. The data breach, which occurred on October 22,...

Calif. AG releases breach notification letter from 1999 incident

by Nicole Freeman

The California Attorney General’s Office released yesterday a copy of a data breach notification letter sent by California physician Kathleen E. Whisman to patients after the San Ramon, Calif. Police Department alerted her on April 11, 2013...

Factoring healthcare BYOD policies into network security

by Patrick Ouellette

From putting access controls with complex passwords in place to encrypting the data, there are plenty of safeguards required of healthcare organizations to secure protected health information (PHI). But one issue that organizations have referenced...

Over 1,000 notified of missing thumb drive, patient data

by Nicole Freeman

On Monday, Redwood Memorial Hospital of Fortuna, California mailed letters to 1,039 patients informing them of a missing thumb drive from the Cardiopulmonary Service Department that may have been storing protected health information (PHI), according...

Eastside Medical Center loses paper patient records

by Patrick Ouellette

Officials at Eastside Medical Center of Snellville, Ga. have confirmed that thousands of pages of paper patient records meant to be shredded by a vendor were lost and spread on a public road. According to, patients’ names, address,...

Former Owensboro medical employee indicted for data breach

by Patrick Ouellette

As a result of former Owensboro Medical Health System (of Kentucky) employee Ilene W. Bullington selling patient information from February 2010 and August 2012, she was indicted by a federal grand jury last Wednesday. Bullington was indicted...

Froedtert Health, Dynacare investigate patient data breach

by Patrick Ouellette

Froedtert Health’s Workforce Health, a healthcare organization, and contractor Dynacare, a clinical laboratory services company, are working toward resolving a recent data breach involving Milwaukee city employees. Dynacare recently lost...

Focusing on web-based threats in a health cloud environment

by Patrick Ouellette

From a regulatory and technical perspective, securing EHRs in a cloud environment both creates and eliminates different types of risks. Ensuring patients’ EHR data is safe is important because of the nature and concentration of that data,...


SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
Data Breaches

Our privacy policy

no, thanks